Incorrectly trying to create tempfile in root directory
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
isc-dhcp (Ubuntu) |
New
|
Undecided
|
Unassigned |
Bug Description
At startup the server tries to create a temp file in the root directory. Thanks to apparmor this is denied, but the error is (I think) silently ignored. In /var/log/syslog there is a message like this:
Mar 23 08:39:17 rotte kernel: [7160216.658291] audit: type=1400 audit(149025475
Notice name="/
I'm using the DHCP server in combination with LDAP and bind9 in a FreeIPA setup. But other than that I believe there is nothing special about it.
In the DHCP source code I couldn't find any code that creates a tempfile like this, but in bind9 in lib/isc/unix/file.c there is code that fits. Perhaps the DHCP server indirectly uses that code.
Is dhcpd running in a chroot? Is the AppArmor profile using 'attach_ disconnected' ? (I'm guessing perhaps these aren't being created in the real root; these two combined could give the appearance of creating files in the root.)
Thanks